Skillv0.0.3

ClawScan security

Polymarket Ai Tech Trader · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 28, 2026, 2:18 PM

Verdict: Benign
Confidence: high
Model: gpt-5-mini
Summary: The skill's code, declared dependencies, and required credential (SIMMER_API_KEY) line up with its stated purpose of trading Polymarket markets; there are no requests for unrelated credentials or shady install steps, though the README overstates some external-data integrations that the shipped code doesn't implement.
Guidance: This skill appears internally consistent and only needs SIMMER_API_KEY and the simmer-sdk package. Before installing: (1) Treat SIMMER_API_KEY as a sensitive trading credential — use a paper/sim-only key for testing and avoid putting a live-capable key in automated environments until you review behavior. (2) Review the simmer-sdk package source or provenance to confirm the client methods (trade, get_markets, apply_skill_config) behave as expected. (3) Note that SKILL.md mentions using external benchmark/news feeds but the shipped trader.py does not implement these integrations — if you expect those signals, inspect or extend the code. (4) Keep autostart/cron disabled until you validate trading logic in sim mode and verify tunable settings. If you want extra assurance, run the script locally in paper mode and observe trades before enabling --live.

Review Dimensions

Purpose & Capability: noteThe skill claims in SKILL.md to monitor external benchmark feeds (LMSYS Chatbot Arena, Hugging Face, SEC EDGAR, GitHub, etc.) as its default signal, but the included trader.py does not call any of those external APIs — it only uses the SimmerClient to discover markets and place trades. Declared requirements (SIMMER_API_KEY, pip simmer-sdk) are appropriate for a Simmer/Polymarket trading agent.
Instruction Scope: okRuntime instructions (SKILL.md) and the code are scoped to market discovery, filtering, and trading via the Simmer SDK. There are no instructions to read unrelated local files, other credentials, or to exfiltrate data. The README warns the user about live mode and defaults to paper trading.
Install Mechanism: okThere is no arbitrary download/install script; clawhub.json declares a pip dependency on 'simmer-sdk' which is proportionate for an SDK-backed trading skill. No extracted archives or external URLs are used.
Credentials: okOnly SIMMER_API_KEY (and SIMMER_* tunables) are requested and used. Those are consistent with the skill's trading purpose. The code reads SIMMER_* env vars for tunables and will raise if SIMMER_API_KEY is absent, which is consistent with clawhub.json.
Persistence & Privilege: okThe skill is not marked always:true, autostart is false, and the automaton entrypoint is the included trader.py. Autonomous invocation is allowed by default (normal for skills) but autostart/cron are disabled by default, reducing surprise execution.